oneclik.
Privacy Policy

Your bug reports. Your data.

We built Oneclik to make bug reporting effortless - not to harvest data. Here is exactly what we collect, why, and how you stay in control.

Last updated: April 19, 2026

Our four privacy principles

These are not legal hedges - they are the engineering constraints we hold ourselves to.

Privacy by default

We capture only what is necessary to reproduce a bug. No keystrokes, no passive screen recording, no shadow profiles.

Encrypted in transit & at rest

All bug reports, screenshots, and logs are transmitted over TLS 1.3 and stored encrypted with AES-256.

You own your data

Export, edit, or permanently delete any report at any time. We never sell, rent, or share your data with third parties for marketing.

Minimal retention

Reports are retained only as long as your workspace requires. Free workspaces auto-expire data after 30 days.

1. Who we are

Oneclik is a product of InnoWave, an AI-driven consulting company operating across 7 countries. For the purpose of GDPR, InnoWave is the data controller for personal data processed through Oneclik. You can reach our privacy team at info@innowave.tech.

2. What we collect

We collect only what is necessary to deliver, secure, and improve the service:

  • Account data - name, work email, organization, and password hash.
  • Bug report content - screenshots, console logs, network requests, browser metadata, and any notes you choose to include.
  • Usage telemetry - anonymized product events (e.g. "report created") to improve the product. No third-party ad trackers.
  • Billing data - handled by our PCI-DSS compliant payment processor. We never store full card numbers.
We never collect: keystrokes, passwords typed into your app, full session recordings, or content from pages where Oneclik was not explicitly invoked.

3. How we use it

  • To capture, route, and display bug reports inside your workspace.
  • To run optional AI summaries (see Section 6).
  • To send transactional emails (e.g. invites, billing receipts).
  • To detect abuse and keep the platform secure.

We do not use your bug reports to train public AI models or sell data to third parties - ever.

4. Where data lives

Data is stored in EU-based data centers by default. Enterprise customers can opt for US or APAC residency. All data is encrypted at rest with AES-256 and in transit with TLS 1.3.

5. How long we keep it

  • Free plan: reports auto-delete after 30 days.
  • Team plan: retained until you delete them or close your workspace.
  • Backups: encrypted backups are purged within 35 days of deletion.
  • Account closure: all personal data is permanently erased within 30 days.

6. AI summaries & processing

When you trigger an AI summary, the bug report content is sent to our AI provider for inference only. Providers are bound by zero-retention agreements - your data is not stored or used for training. You can disable AI features at the workspace level.

7. Subprocessors

We use a small, audited set of subprocessors for hosting, email delivery, payments, and AI inference. A current list is available on request to info@innowave.tech.

8. Your rights (GDPR & CCPA)

You have the right to access, correct, export, restrict, or permanently delete your personal data. Most actions are self-serve in workspace settings; for anything else, email us and we will respond within 30 days.

9. Cookies

We use a minimal set of strictly-necessary cookies for authentication and session management. We do not use advertising or cross-site tracking cookies.

10. Changes to this policy

If we make material changes, we will notify workspace admins by email at least 30 days before they take effect. Minor clarifications will be reflected here with an updated date.

Questions about your data?

We answer every privacy request personally - usually within two business days.

info@innowave.techAbout InnoWave